Hi, I have a strange problem which I have been debugging unsuccessfully for two days now. Perhaps one of you can help. We have a web server (SuSE Linux 7.3) behind a firewall (SuSE Linux 7.1) with iptables filtering rules. The firewall's NICs are configured as follows: eth0 62.245.134.130 netmask 255.255.255.240 connected directly to the web server via a cross-over cable eth1 62.245.134.146 netmask 255.255.255.240 connected to the internet route -n tells Destination Gateway Genmask Flags Metric Ref Use Iface 62.245.134.128 0.0.0.0 255.255.255.240 U 0 0 0 eth1 62.245.134.144 0.0.0.0 255.255.255.240 U 0 0 0 eth0 0.0.0.0 62.245.134.129 0.0.0.0 UG 0 0 0 eth1 62.245.134.129 is the gateway IP address assigned to us by the ISP. The web servers NIC is configured as eth0 62.245.134.145 netmask 255.255.255.240 and the routing table looks like this: Destination Gateway Genmask Flags Metric Ref Use Iface 62.245.134.144 0.0.0.0 255.255.255.240 U 0 0 0 eth0 62.245.134.144 0.0.0.0 255.255.255.240 U 0 0 0 eth0 0.0.0.0 62.245.134.146 0.0.0.0 UG 0 0 0 eth0 The problem is that the web server is not reachable on from the other side of the firewall although IP forwarding is activeated on the firewall. I don't think the problem is related to the filtering rules, but I can post the script if neccessary. Am I missing something? Do I have to configure the firewall as an ethernet bridge for this to work? Any hint is appreciated. Thanks, Robert -- Where do you want to be tomorrow? Entracom. Building Linux systems. http://www.entracom.de